This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/325b84-2ed4-4092-906c-100eed812c40/1/PIBAi-NbloODmSiDeKc6jb9ihv4.roa File: PIBAi-NbloODmSiDeKc6jb9ihv4.roa (raw, json) Hash identifier: R3IFcDR+URbSvkybKJ/Sj9TwLvQjyr3A69qpjrCDlEE= Subject key identifier: 3C:80:40:8B:E3:5B:96:83:83:99:28:83:78:A7:3A:8D:BF:62:86:FE Certificate issuer: /CN=a62f2d3c269d935227690b28b7fbdd953e1e9edc Certificate serial: 019B7BA518371E5DB434BC50939052F7E976 Authority key identifier: A6:2F:2D:3C:26:9D:93:52:27:69:0B:28:B7:FB:DD:95:3E:1E:9E:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pi8tPCadk1InaQsot_vdlT4entw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/325b84-2ed4-4092-906c-100eed812c40/1/PIBAi-NbloODmSiDeKc6jb9ihv4.roa Signing time: Thu 01 Jan 2026 22:19:35 +0000 ROA not before: Thu 01 Jan 2026 22:19:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202 IP address blocks: 91.240.72.0/24 maxlen: 24 185.42.232.0/24 maxlen: 24 185.42.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/325b84-2ed4-4092-906c-100eed812c40/1/pi8tPCadk1InaQsot_vdlT4entw.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/325b84-2ed4-4092-906c-100eed812c40/1/pi8tPCadk1InaQsot_vdlT4entw.mft rsync://rpki.ripe.net/repository/DEFAULT/pi8tPCadk1InaQsot_vdlT4entw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:18:37:1e:5d:b4:34:bc:50:93:90:52:f7:e9:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a62f2d3c269d935227690b28b7fbdd953e1e9edc Validity Not Before: Jan 1 22:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3c80408be35b96838399288378a73a8dbf6286fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:49:97:e6:48:bd:35:6c:ed:c8:1f:6d:1a:70: cb:5a:6c:b7:1c:21:4f:bd:d3:5f:83:05:7a:0c:ca: 38:f6:d2:75:00:dc:99:96:df:96:77:a1:00:5b:13: ba:02:8a:09:d1:22:81:85:91:ed:59:dd:2b:35:4b: bf:55:91:b9:9d:ee:00:61:15:87:04:e5:76:51:db: d8:d7:e0:80:c1:e3:a3:09:3e:61:1a:af:ea:56:b3: a6:5d:9a:60:2e:20:a4:cc:7f:3b:33:d0:fe:c9:e9: ad:64:99:e2:88:dc:1a:28:a2:6d:2e:68:b7:22:9f: 49:e0:51:f8:c7:e0:80:4d:47:bd:4f:04:2c:8b:4b: 55:64:c8:d3:26:c3:63:f7:70:4b:59:2e:f8:ad:24: 36:a2:36:69:90:9a:f2:d5:ac:49:17:5c:3a:53:57: 7c:58:6e:2b:63:36:d8:ae:d2:58:27:0a:62:ea:87: 51:3f:fa:b3:18:17:9d:98:71:b5:c9:ea:39:dd:b9: b2:dc:c6:3d:bf:ed:26:53:c5:fb:ff:50:73:53:43: 5b:f9:8e:f5:af:95:e4:0c:bc:32:86:96:f6:60:40: bb:0d:2c:7e:29:75:8f:7c:a5:29:68:56:7c:89:8e: f4:9b:b5:99:57:73:94:2c:a8:c4:74:fa:4b:bf:09: 8a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:80:40:8B:E3:5B:96:83:83:99:28:83:78:A7:3A:8D:BF:62:86:FE X509v3 Authority Key Identifier: keyid:A6:2F:2D:3C:26:9D:93:52:27:69:0B:28:B7:FB:DD:95:3E:1E:9E:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pi8tPCadk1InaQsot_vdlT4entw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/325b84-2ed4-4092-906c-100eed812c40/1/PIBAi-NbloODmSiDeKc6jb9ihv4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/325b84-2ed4-4092-906c-100eed812c40/1/pi8tPCadk1InaQsot_vdlT4entw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.240.72.0/24 185.42.232.0/23 Signature Algorithm: sha256WithRSAEncryption 79:3c:2a:f5:de:b0:43:cc:b4:2f:fd:d4:ef:3c:17:05:71:6c: aa:45:13:dd:d7:0e:80:03:1f:5f:1f:ab:c2:07:a1:9c:20:03: b1:7b:a2:f4:a6:fd:be:ea:52:52:df:6d:f7:fb:49:35:64:5e: ed:4f:67:d1:32:e4:99:b8:65:27:a8:23:0b:0d:2f:ab:b6:ac: b2:ff:94:27:8b:49:7a:74:49:7d:9b:ae:f8:e5:15:f8:81:74: ff:a7:7c:93:0c:75:20:60:1c:b3:5f:6f:39:66:ed:43:ec:13: ee:d7:36:69:af:8a:7b:72:a6:9d:60:c0:5f:6e:a8:cf:dc:21: 75:d0:72:5c:e3:04:7a:5e:ae:6d:73:28:5b:db:3e:42:98:40: 22:35:73:4e:34:c2:c5:80:aa:5c:6d:85:a9:2c:f0:f5:d0:c1: da:91:68:ed:d1:f4:4b:17:1a:b4:98:06:2c:d3:e9:a8:2d:a2: 73:9b:e8:97:21:d1:0f:75:2a:27:5a:0d:16:9f:39:28:0f:ee: 69:44:12:71:ba:a0:c9:7f:19:e9:8d:72:64:f4:11:86:78:06: 27:cd:de:8d:50:b5:96:5d:f8:b3:15:25:d6:f3:4a:d6:58:3c: a5:60:09:31:b0:b8:20:cc:66:fa:b5:73:9e:8d:5a:f2:2a:dc: e2:61:3a:62 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pRg3Hl20NLxQk5BS9+l2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2MmYyZDNjMjY5ZDkzNTIyNzY5MGIyOGI3ZmJkZDk1M2Ux ZTllZGMwHhcNMjYwMTAxMjIxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYzgwNDA4YmUzNWI5NjgzODM5OTI4ODM3OGE3M2E4ZGJmNjI4NmZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskmX5ki9NWztyB9tGnDLWmy3HCFP vdNfgwV6DMo49tJ1ANyZlt+Wd6EAWxO6AooJ0SKBhZHtWd0rNUu/VZG5ne4AYRWH BOV2UdvY1+CAweOjCT5hGq/qVrOmXZpgLiCkzH87M9D+yemtZJniiNwaKKJtLmi3 Ip9J4FH4x+CATUe9TwQsi0tVZMjTJsNj93BLWS74rSQ2ojZpkJry1axJF1w6U1d8 WG4rYzbYrtJYJwpi6odRP/qzGBedmHG1yeo53bmy3MY9v+0mU8X7/1BzU0Nb+Y71 r5XkDLwyhpb2YEC7DSx+KXWPfKUpaFZ8iY70m7WZV3OULKjEdPpLvwmKkQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFDyAQIvjW5aDg5kog3inOo2/Yob+MB8GA1UdIwQY MBaAFKYvLTwmnZNSJ2kLKLf73ZU+Hp7cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGk4dFBDYWRrMUluYVFzb3RfdmRsVDRlbnR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS8zMjViODQtMmVkNC00MDkyLTkwNmMt MTAwZWVkODEyYzQwLzEvUElCQWktTmJsb09EbVNpRGVLYzZqYjlpaHY0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS8zMjViODQtMmVkNC00MDkyLTkwNmMtMTAwZWVkODEyYzQw LzEvcGk4dFBDYWRrMUluYVFzb3RfdmRsVDRlbnR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW/BIAwQB uSroMA0GCSqGSIb3DQEBCwUAA4IBAQB5PCr13rBDzLQv/dTvPBcFcWyqRRPd1w6A Ax9fH6vCB6GcIAOxe6L0pv2+6lJS3233+0k1ZF7tT2fRMuSZuGUnqCMLDS+rtqyy /5Qni0l6dEl9m6745RX4gXT/p3yTDHUgYByzX285Zu1D7BPu1zZpr4p7cqadYMBf bqjP3CF10HJc4wR6Xq5tcyhb2z5CmEAiNXNONMLFgKpcbYWpLPD10MHakWjt0fRL Fxq0mAYs0+moLaJzm+iXIdEPdSonWg0WnzkoD+5pRBJxuqDJfxnpjXJk9BGGeAYn zd6NULWWXfizFSXW80rWWDylYAkxsLggzGb6tXOejVryKtziYTpi -----END CERTIFICATE-----Generated at Tue Jan 20 23:14:23 2026 by rpki-client